Method for securing data relating to users of a public-key infrastructure

1. Method for securing data relating to users of a public key infrastructure who may present certificates ( 11 ) at an institution ( 30 ) in order to initiate transactions, comprising the steps of a) providing cryptographic means to the institution ( 30 ) which are designed for encrypting and decrypting data, b) generating relational data based on an agreement between a certificate holder and the institution ( 30 ), c) generating a secret key or a key pair ( 35 , 36 ) which is designed for encrypting and decrypting data and which is used and securely stored by the institution ( 30 ), d) encrypting the relational data by the institution ( 30 ) with said cryptographic means, e) encrypting the relational data with the secret key or the first key of said key pair ( 35 , 36 ) of the institution ( 30 ), f) integrating the encrypted relational data into the certificate ( 11 ) of said certificate holder, g) decrypting said encrypted relational data contained in the certificate ( 11 ) of said certificate holder with said cryptographic means whenever a transaction is to be performed based on said agreement between the certificate holder and the institution ( 30 ) and h) decrypting said encrypted relational data contained in the certificate ( 11 ) of said certificate holder by means of the secret key or the second key of said key pair ( 35 , 36 ) of the institution ( 30 ) whenever a transaction is to be performed based on said agreement between the certificate holder and the institution ( 30 ).

2. Method according to claim 1 , comprising the steps of binding the relational data securely to the corresponding certificate and by combining the encrypted relational data with a certificate identifier, such as the hash of the certificate body, which has been signed by the certification authority ( 102 ).

3. Method according to claim comprising the steps of building a hash of the combination of the encoded relational data and the certificate identifier and signing the combined data by the institution ( 30 ).

4. Method according to claim 1 , comprising the steps of sending the encrypted or combined and signed relational data to the authority ( 101 , 102 ) of the public key infrastructure which has issued the certificate ( 11 ), said authority ( 101 , 102 ) adding the received encrypted relational data to the certificate ( 11 ) and reissuing said certificate ( 11 ).

5. Method according to claim 1 , comprising the steps of transferring the reissued certificate ( 11 ) which contains the encrypted or signed relational data to the certificate holder and/or to the institution ( 30 ) preferably during the session the encrypted or signed relational data was received by the authority ( 101 , 102 ).

6. Method according to claim 1 , comprising the steps of securely storing the keys ( 35 , 36 ) of the key pair, which are used for encrypting and decrypting relational data, separated from each other in different locations or departments of the institution ( 30 ).

7. Method according to claim 1 , comprising the steps of securely storing the secret key, which is used for encrypting and decrypting relational data, at the institution ( 30 ).

8. Method according to claim 1 , comprising the steps of comparing the decrypted relational data with data stored in a directory ( 33 ) of the institution ( 30 ) in which data of clients and relations between the institution ( 30 ) and said clients are stored in order to check integrity of said data.

9. Method according to claim 1 comprising the steps of integrating encrypted or signed relational data in the certificate individually for more than one agreement or confirmed information.

10. Method for securing data relating to users of a public key infrastructure who may present certificates ( 11 ) at an institution ( 30 ) in order to initiate transactions and prove information corresponding to said data, comprising the steps of a) providing cryptographic means to the institution ( 30 ) which are designed for encrypting and decrypting data, b) generating relational data based on an agreement between a certificate holder and the institution ( 30 ) c) encrypting the relational data by the institution ( 30 ) with said cryptographic means, d) integrating the encrypted relational data into the certificate ( 11 ) of said certificate holder, e) decrypting said encrypted relational data contained in the certificate ( 11 ) of said certificate holder with said crypto graphic means whenever a transaction is to be performed based on said agreement between the certificate holder and the institution ( 30 ), f) generating additional relational data based on information related to a certificate holder, said information being confirmed by the institution ( 30 ) by g) securely transferring said additional relational data to the certification authority ( 102 ) and h) integrating the signed additional relational data into the certificate ( 11 ) of said certificate holder.

11. Method according to claim 1 comprising the steps of generating additional relational data based on one or more additional certificates, the certificate holder has received from other authorities of the public key infrastructure, and integrating said additional relational data signed and/or encrypted into the certificate ( 11 ).

12. Method according to claim 1 comprising the steps of storing the certificate ( 11 ) in a token ( 10 ) which preferably comprises a biometric input device ( 1 ).

13. Method according to claim 1 using an extendable certificate ( 11 ) such as a certificate specified according to ITU recommendation X.509 version 3.